Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/DqhLgPa6p3NKnUtapLIlXqB6pmU.roa
File: DqhLgPa6p3NKnUtapLIlXqB6pmU.roa (raw, json)
Hash identifier: 4ShrxlWkiwMFlH8sxFISC4fEPWTrSS02xGZU5GZxGuI=
Subject key identifier: 0E:A8:4B:80:F6:BA:A7:73:4A:9D:4B:5A:A4:B2:25:5E:A0:7A:A6:65
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/DqhLgPa6p3NKnUtapLIlXqB6pmU.roa
Signing time: Thu 15 Sep 2022 02:46:57 +0000
ROA not before: Thu 15 Sep 2022 02:46:57 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 203.77.36.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:46:57 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0EA84B80F6BAA7734A9D4B5AA4B2255EA07AA665
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f0:b4:fa:c9:94:09:71:10:d5:26:38:16:02:
de:a2:01:03:27:06:29:5c:3f:d5:fc:40:57:8e:6f:
7b:79:2b:3c:9a:82:dc:51:80:39:4e:e1:eb:4b:12:
48:99:d7:7d:58:b9:ee:03:dd:25:1d:74:a9:04:9a:
70:6f:93:77:3b:14:ac:bf:74:98:2a:ed:bc:18:b0:
d8:0c:87:de:45:28:29:75:10:ab:8d:b4:ff:0f:4a:
ff:64:1e:0f:04:38:84:eb:d0:b5:a5:4e:aa:4b:92:
15:9b:1d:ae:e7:f0:f5:ef:e7:85:49:86:eb:eb:1a:
d0:cd:3c:80:53:5d:20:bb:45:da:04:fe:62:70:f0:
c0:12:02:4e:af:04:41:00:71:3c:1b:3a:8d:f2:fa:
27:49:37:08:10:6b:1a:f4:bc:a5:b4:91:54:3e:93:
89:10:ce:d2:e0:c0:e9:ca:a4:dc:96:35:6d:29:8f:
03:23:78:d7:9f:d7:b4:d6:c2:c6:49:81:60:f6:9d:
20:8c:2d:4b:4d:bd:e9:a0:ce:bf:55:82:dc:b4:5c:
b5:61:ee:cc:f6:1c:45:e5:03:03:56:05:e2:8b:3a:
1c:31:ad:cc:2b:42:79:a8:97:69:0c:0e:6e:7a:53:
db:05:3b:e4:94:c8:78:e0:c8:be:61:76:71:8d:b7:
1d:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:A8:4B:80:F6:BA:A7:73:4A:9D:4B:5A:A4:B2:25:5E:A0:7A:A6:65
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/DqhLgPa6p3NKnUtapLIlXqB6pmU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.36.0/23
Signature Algorithm: sha256WithRSAEncryption
31:92:1c:b1:bf:ed:b5:43:0c:c7:d8:b4:30:2e:e8:34:a5:85:
7f:3b:da:41:11:76:ba:84:75:cb:5f:e5:88:a5:23:fe:d5:7d:
ca:3e:3c:ee:a2:c2:3b:3b:f9:a7:6a:2a:93:87:b4:eb:29:a3:
1d:38:02:08:f5:7e:39:0d:d4:f1:d6:ba:a8:98:e1:d4:a3:8c:
f2:f1:47:ca:cb:b5:03:1d:50:a1:5b:42:4a:fb:c7:52:79:af:
ba:a8:33:a9:c7:66:c4:2e:2f:c5:df:9e:a7:76:ca:16:b0:be:
d8:7b:19:09:9f:bd:f2:ea:f8:79:bf:4b:90:35:dd:e4:df:43:
af:d3:04:de:63:06:87:1e:78:0f:ea:0c:4f:28:2f:e1:8e:83:
99:be:88:77:1b:0f:31:b0:2f:a1:85:1a:6b:0d:2e:f0:7f:3e:
e4:15:96:1a:d9:f4:4f:2d:a4:a2:3f:a0:b6:10:ae:ac:d2:0e:
1d:9c:1c:95:d1:77:f7:80:57:49:0f:a7:66:45:77:5c:85:4b:
d3:aa:8f:47:18:d4:d0:31:5e:53:aa:3e:5f:5b:e7:a9:3c:66:
5a:01:ad:9e:9e:c9:e5:c2:51:ad:26:27:36:40:e7:1b:96:40:
d4:f6:d6:fd:57:21:6e:44:41:a7:86:d4:b1:8f:31:7e:52:c8:
96:4b:d7:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org